Security

Last updated: June 5, 2026

Andromeda is currently an early-stage product (MVP / beta). These policies describe our current practices and will be updated as the product evolves. Questions? Email support@andromedacredit.com.

Our approach

Security is a priority from day one. As an early-stage product, we focus on a small set of strong, practical safeguards rather than marketing badges. Here is exactly what we do today.

Encryption in transit

All traffic to and from Andromeda is served over HTTPS/TLS, so data moving between your browser and our servers is encrypted.

Authentication

Login is handled by Auth0, an industry-standard identity provider. We never see or store your password. Social login (Google) is also available.

Sensitive data handling

We do not store full Social Security Numbers — only the last four digits when needed.
Sensitive fields in stored credit data are encrypted.
Access to your data is scoped to your account; the platform is built multi-tenant so accounts are isolated from one another.

Payments

Payments are processed by Stripe. We do not store your full card number on our servers.

What we're still building

We're an MVP and are transparent about it: formal certifications such as SOC 2 are on our roadmap but not yet in place. We'll update this page as we add them. If you find a security issue, please report it to security@andromedacredit.com — we appreciate responsible disclosure.